Some of Our Sources
- BoingBoing
- Mashable
- TutsPlus - Code
- Web Designer Wall
- Spoon Graphics
- Abduzeedo
- Fuel Your Creativity
- Web Designer Depot
- Noupe
- Specky Boy
Help Webnuz
Referal links:
September 26, 2019 10:00 am
Original Link: http://rss.slashdot.org/~r/Slashdot/slashdot/~3/ao9zqPJVGdg/narrator-windows-utility-trojanized-to-gain-full-system-control
'Narrator' Windows Utility Trojanized To Gain Full System Control
A suspected Chinese advanced persistent threat (APT) group has been spotted attacking tech companies using a trojanized screen-reader application, replacing the built-in Narrator "Ease of Access" feature in Windows. Threatpost reports: The attackers also deploy a version of the open-source malware known as the PcShare backdoor to gain an initial foothold into victims' systems. Using the two tools, the adversaries are able to surreptitiously control Windows machines via remote desktop logon screens, without the need for credentials. The attacks begin by delivering the PcShare backdoor to victims via spearphishing campaigns. It has been modified and designed to operate when side-loaded by a legitimate NVIDIA application. It is "specifically tailored to the needs of the campaign, with additional command-and-control (C2) encryption and proxy bypass functionality, and any unused functionality removed from the code," explained researchers with BlackBerry Cylance, in an analysis posted on Wednesday. The unused functionality includes audio/video streaming and keyboard monitoring, suggesting that it's strictly being used to install other malware.Read more of this story at Slashdot.
Original Link: http://rss.slashdot.org/~r/Slashdot/slashdot/~3/ao9zqPJVGdg/narrator-windows-utility-trojanized-to-gain-full-system-control
Share this article:
Tweet
View Full Article
Slashdot
Slashdot was originally created in September of 1997 by Rob "CmdrTaco" Malda. Today it is owned by Geeknet, Inc..More About this Source Visit Slashdot